Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer
File: kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer (raw, json)
Hash identifier: FraC/fpSBG19UX948rbJMZ7kJddhmFTSztVo6DuF2bA=
Subject key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020EDB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 04:13:19 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 9465
IP: 103.255.0.0/23
IP: 2401:26e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 16:50:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134875 (0x20edb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 23 04:13:19 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:00:50:1c:4e:32:ca:c5:31:91:e0:da:06:b5:
1c:53:ca:e4:87:45:48:1e:f5:42:14:f8:64:a2:a5:
56:59:6b:7f:17:69:18:84:80:86:5a:d3:db:44:fe:
4f:ef:40:d2:db:97:29:90:db:81:22:ea:5f:ac:4b:
3a:69:99:f7:f9:68:ba:4b:c3:79:01:ad:42:e9:b9:
78:14:a6:a5:15:7c:63:5f:6f:5d:38:9c:e3:5d:3f:
d1:1a:c8:16:06:77:9e:32:d3:9e:af:ec:ea:f1:d0:
a7:b5:57:9a:58:ea:16:51:67:09:85:c0:ed:f5:2d:
61:d8:65:ce:f8:cb:81:e7:f5:c5:60:fa:dd:d0:cd:
f8:d2:47:16:c6:6f:09:a1:8a:1b:4f:d8:c0:f1:37:
63:bc:49:dd:5f:8a:3e:7c:b3:57:a3:23:cc:8e:40:
8b:65:ae:4a:64:35:03:4e:61:3c:af:f2:41:f2:cd:
6a:2e:fe:25:2d:ab:f4:c4:03:bf:b3:de:52:2b:7b:
7c:7d:c9:12:60:ab:c8:32:cb:6a:8c:fe:a3:25:7d:
10:c9:e6:14:24:54:7e:1d:17:9d:04:6d:7a:c5:25:
b5:2b:fd:db:23:25:50:46:19:fa:45:06:bf:6c:9b:
e0:37:61:83:ab:ca:c9:35:66:b7:5d:aa:98:70:66:
80:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9465
sbgp-ipAddrBlock: critical
IPv4:
103.255.0.0/23
IPv6:
2401:26e0::/32
Signature Algorithm: sha256WithRSAEncryption
3d:c0:30:c4:35:c1:d8:d6:0e:e0:42:6e:43:be:37:01:d4:89:
89:92:20:78:06:1f:d3:12:b9:cb:c4:3e:77:2c:63:f5:d7:dd:
da:07:5c:54:9f:42:25:5f:90:9e:30:f9:13:e7:1e:05:99:0c:
d3:04:20:4e:23:09:6a:6d:25:7b:17:23:f5:4d:08:96:d0:50:
e7:cf:f4:ce:69:88:ce:fb:d4:49:e2:2a:d6:b7:cb:e4:32:e0:
fd:70:42:39:8c:50:c8:c7:a4:9c:e5:06:c4:fe:47:0f:c5:d2:
64:a8:72:2b:b3:95:79:20:fe:64:c3:c9:dd:d2:61:f6:6d:f6:
cf:06:0a:62:41:69:b7:e6:37:71:4e:9a:c9:d4:7e:8f:de:fb:
2a:00:bb:24:ce:59:7a:95:31:d3:0e:98:52:08:62:c7:5c:45:
0f:09:64:e8:19:dc:3d:33:34:fc:cd:1c:d8:7f:12:45:7b:7c:
6c:99:cf:7a:34:67:b1:36:de:77:53:c4:1e:cb:ed:60:46:72:
56:4b:79:32:09:9d:fe:21:0b:db:af:c7:41:20:a3:67:ba:bd:
6f:00:96:60:52:4b:d4:12:e0:f3:19:45:08:9b:a4:98:ec:66:
99:0b:e7:d8:4b:a5:b8:4f:b9:82:c8:5a:09:d2:bd:c1:b9:fd:
8a:11:4e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:01:39 2024 by rpki-client on console-fra.rpki-client.org